Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-28861) CVE-2021-28861 CWE-601 CWE-601 High Python Use After Free Vulnerability (CVE-2022-48560) CVE-2022-48560 CWE-416 CWE-416 High qdPM Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-26180) CVE-2022-26180 CWE-352 CWE-352 High qdPM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-26165) CVE-2020-26165 CWE-94 CWE-94 High qdPM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-7246) CVE-2020-7246 CWE-22 CWE-22 High qdPM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-45855) CVE-2023-45855 CWE-22 CWE-22 High qdPM Information Disclosure CWE-260 CWE-260 High qdPM Sensitive Information Disclosure Vulnerability (CVE-2015-3881) CVE-2015-3881 High Qlik Sense Enterprise Auth Bypass (CVE-2023-41266) CVE-2023-41266 CWE-20 CWE-20 High Question2Answer Improper Input Validation Vulnerability (CVE-2017-12775) CVE-2017-12775 CWE-20 CWE-20 High Railo administration panel cross-site scripting CWE-80 CWE-80 High Rails Asset Pipeline Directory Traversal Vulnerability CVE-2018-3760 CWE-22 CWE-22 High Rails Devise authentication password reset CVE-2013-0233 CWE-287 CWE-287 High Rails mass assignment CWE-915 CWE-915 High Rails remote code execution using render :inline CVE-2016-2098 CWE-94 CWE-94 High RCE in SQL Server Reporting Services (SSRS) CVE-2020-0618 CWE-78 CWE-78 High RCE with Spring Data Commons CVE-2018-1273 CWE-94 CWE-94 High Reachable SharePoint interface CWE-200 CWE-200 High Reflected Cross-Site Scripting (XSS) vulnerability in PAN-OS management web interface CVE-2020-2036 CWE-79 CWE-79 High Remote Code Execution (RCE) in Spring Security OAuth CVE-2016-4977 CWE-94 CWE-94 High Remote code execution in bootstrap-sass 3.2.0.3 CVE-2019-10842 CWE-95 CWE-95 High Remote code execution of user-provided local names in Rails CVE-2020-8163 CWE-94 CWE-94 High Remote code execution vulnerability in WordPress Duplicator CWE-98 CWE-98 High Remote File Inclusion (admin/lang.php) (CMS Made Simple) CVE-2005-2846 High Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (CVE-2024-6387) CVE-2024-6387 CWE-362 CWE-362 High Request Smuggling CWE-444 CWE-444 High Resin Application Server Improper Input Validation Vulnerability (CVE-2012-2965) CVE-2012-2965 CWE-20 CWE-20 High Resin Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-44138) CVE-2021-44138 CWE-22 CWE-22 High Resin Application Server Other Vulnerability (CVE-2012-2966) CVE-2012-2966 High Resin Application Server Other Vulnerability (CVE-2012-2967) CVE-2012-2967 High Restlet Framework Deserialization of Untrusted Data Vulnerability (CVE-2013-4271) CVE-2013-4271 CWE-502 CWE-502 High Restlet Framework Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-14868) CVE-2017-14868 CWE-611 CWE-611 High Restlet Framework Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-14949) CVE-2017-14949 CWE-611 CWE-611 High Restlet Framework XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2013-4221) CVE-2013-4221 CWE-91 CWE-91 High RethinkDB administrative interface publicly exposed CWE-200 CWE-200 High Reverse proxy misrouting CWE-918 CWE-918 High ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-9127) CVE-2016-9127 CWE-352 CWE-352 High ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-9455) CVE-2016-9455 CWE-352 CWE-352 High ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-9456) CVE-2016-9456 CWE-352 CWE-352 High ReviveAdserver Improper Access Control Vulnerability (CVE-2015-7367) CVE-2015-7367 CWE-284 CWE-284 High ReviveAdserver Improper Access Control Vulnerability (CVE-2015-7369) CVE-2015-7369 CWE-284 CWE-284 High ReviveAdserver Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-7372) CVE-2015-7372 CWE-22 CWE-22 High ReviveAdserver Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-7149) CVE-2013-7149 CWE-138 CWE-138 High ReviveAdserver Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-22948) CVE-2021-22948 CWE-327 CWE-327 High ReviveAdserver Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2019-5440) CVE-2019-5440 CWE-338 CWE-338 High Revoked SSL Certificate CWE-295 CWE-295 High Riot.js Resource Management Errors Vulnerability (CVE-2016-10527) CVE-2016-10527 High ROBOT Attack Detected (Strong Oracle) High ROBOT Attack Detected (Weak Oracle) High RoR Database Configuration File Detected CWE-538 CWE-538 High Roundcube Cross-site Request Forgery (CSRF) Vulnerability (CVE-2016-4069) CVE-2016-4069 High Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5383) CVE-2015-5383 CWE-200 CWE-200 High Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-19205) CVE-2018-19205 CWE-200 CWE-200 High Roundcube Files or Directories Accessible to External Parties Vulnerability (CVE-2017-16651) CVE-2017-16651 CWE-552 CWE-552 High Roundcube Improper Access Control Vulnerability (CVE-2016-9920) CVE-2016-9920 CWE-284 CWE-284 High Roundcube Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-6172) CVE-2013-6172 CWE-138 CWE-138 High Roundcube Improper Privilege Management Vulnerability (CVE-2017-8114) CVE-2017-8114 CWE-269 CWE-269 High Roundcube Multiple Buffer Overflow Vulnerabilities (CVE-2015-2181) CVE-2015-2181 High Roundcube Resource Management Errors Vulnerability (CVE-2008-5620) CVE-2008-5620 High Roundcube security updates 0.8.6 and 0.7.3 CVE-2013-1904 CWE-22 CWE-22 High Roundcube Unspesificed Vulnerability (CVE-2018-9846) CVE-2018-9846 High Roundcube Unspesificed Vulnerability (CVE-2018-1000071) CVE-2018-1000071 High Roundcube Unspesificed Vulnerability (CVE-2019-15237) CVE-2019-15237 High RSA Private Key Detected CWE-200 CWE-200 High Ruby CVE-2018-16396 Vulnerability (CVE-2018-16396) CVE-2018-16396 High Ruby CVE-2021-41819 Vulnerability (CVE-2021-41819) CVE-2021-41819 High Ruby framework weak secret key CWE-693 CWE-693 High RubyGems Deserialization of Untrusted Data Vulnerability (CVE-2018-1000074) CVE-2018-1000074 CWE-502 CWE-502 High RubyGems Improper Authentication Vulnerability (CVE-2022-36073) CVE-2022-36073 CWE-287 CWE-287 High RubyGems Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-8324) CVE-2019-8324 CWE-94 CWE-94 High RubyGems Improper Input Validation Vulnerability (CVE-2017-0900) CVE-2017-0900 CWE-20 CWE-20 High RubyGems Improper Input Validation Vulnerability (CVE-2017-0901) CVE-2017-0901 CWE-20 CWE-20 High RubyGems Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-8320) CVE-2019-8320 CWE-22 CWE-22 High RubyGems Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2018-1000073) CVE-2018-1000073 CWE-59 CWE-59 High RubyGems Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2019-8321) CVE-2019-8321 CWE-707 CWE-707 High 1...43444546...168 44 / 168
